On Feb 22, 2006, at 6:47 PM, Hallam-Baker, Phillip wrote:
In rebuttal to Doug's point about not depending on the DNS
supporting longer key sizes, an ECDSA key that gives equivalent
strength to a 128 bit symmetric cipher is 256 bits with point
compression and 512 bits without. An equivalent ECDSA signature is
512 bits in either case. The comparable key size for RSA is 3072
bits for key and signature.
This looks great, but at what price? From what other companies
beyond Certicom Inc. would licenses need to be obtained in order to
support the EC algorithm? Is there any information with respect to
existing terms?
Adapting to limitations of some fashion always seems par for the
course. DKIM should be agile and able to adapt to its environment.
-Doug
_______________________________________________
NOTE WELL: This list operates according to
http://mipassoc.org/dkim/ietf-list-rules.html